Package org.geomajas.internal.security

Source Code of org.geomajas.internal.security.SecurityManagerImpl

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
/*
* This is part of Geomajas, a GIS framework, http://www.geomajas.org/.
*
* Copyright 2008-2011 Geosparc nv, http://www.geosparc.com/, Belgium.
*
* The program is available in open source according to the GNU Affero
* General Public License. All contributions in this program are covered
* by the Geomajas Contributors License Agreement. For full licensing
* details, see LICENSE.txt in the project root.
*/

package org.geomajas.internal.security;

import java.util.ArrayList;
import java.util.List;

import org.geomajas.security.Authentication;
import org.geomajas.security.SavedAuthorization;
import org.geomajas.security.SecurityContext;
import org.geomajas.security.SecurityInfo;
import org.geomajas.security.SecurityManager;
import org.geomajas.security.SecurityService;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

/**
* {@link org.geomajas.security.SecurityManager} implementation.
* <p/>
* The security manager tries to find the authorization objects for an authentication token.
* <p/>
* It can be used to create or clear the security context for the current thread.
*
* @author Joachim Van der Auwera
*/
@Component
public class SecurityManagerImpl implements SecurityManager {

  @Autowired
  private SecurityInfo securityInfo;

  @Autowired
  private SecurityContext securityContext;

  /** @inheritDoc */
  public boolean createSecurityContext(String authenticationToken) {
    clearSecurityContext(); // assure there is no authenticated user in case of problems during creation
    List<SecurityService> services = securityInfo.getSecurityServices();
    List<Authentication> authentications = new ArrayList<Authentication>();
    for (SecurityService service : services) {
      Authentication auth = service.getAuthentication(authenticationToken);
      if (null != auth) {
        authentications.add(auth);
        auth.setSecurityServiceId(service.getId());
        if (!securityInfo.isLoopAllServices()) {
          break;
        }
      }
    }
    if (!authentications.isEmpty()) {
      // build authorization and build thread local SecurityContext
      ((SecurityContextImpl) securityContext).setAuthentications(authenticationToken, authentications);
      return true;
    }
    return false;
  }

  /** @inheritDoc */
  public void clearSecurityContext() {
    ((SecurityContextImpl) securityContext).setAuthentications(null, null);
  }

  public void restoreSecurityContext(SavedAuthorization authorizations) {
    if (null == authorizations) {
      clearSecurityContext();
    } else {
      ((SecurityContextImpl) securityContext).restoreSecurityContext(authorizations);
    }
  }
}
TOP

Related Classes of org.geomajas.internal.security.SecurityManagerImpl

  • org.geomajas.security.Authentication
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.